Releases: hexpm/hex_core
Releases · hexpm/hex_core
v0.15.0
- Add
request_to_filecallback tohex_httpbehaviour for streaming HTTP response body directly to a file. - Add
hex_repo:get_tarball_to_file/4andhex_repo:get_docs_to_file/4for downloading tarballs and docs directly to disk. - Implement
request_to_fileinhex_http_httpcusing httpc's{stream, Filename}option.
v0.14.1
v0.14.0
- Stream tar extraction to disk, writing file entries in chunks instead of loading into memory.
- Add
{file, Path}support tohex_tarball:unpack_docs/2,3to read doc tarballs from disk. - Add
noneoutput mode tohex_tarball:unpack/2,3to extract only metadata and checksums, skipping contents.
v0.13.0
v0.12.1
- Fix unsafe deserialization of Erlang terms in API responses (CVE-2026-21619)
v0.12.0
- Add short URL API
hex_api_short_url:create/2. - Add OAuth API:
hex_api_oauth:device_authorization/3,4hex_api_oauth:poll_device_token/3hex_api_oauth:refresh_token/3hex_api_oauth:revoke_token/3hex_api_oauth:client_credentials_token/4,5
- Support 2FA authentication, any API request can now return
{error, otp_required | invalid_totp}
if 2FA is required. The config optionapi_otpcan be used to provide the TOTP code. - Differentiate between registry verification errors.
{error, unverified}has been replaced with
{error, bad_repo_name | bad_signature}. - Support nested maps in
extrapackage metadata field.
v0.10.1
- Update
hex_licensesmodule to reflect most recent list available from SPDX.
v0.10.0
-
Drop support for old OTP and Rebar versions.
hex_corenow requires OTP20+ and Rebar 3.15.1+. -
Add
hex_repo:get_docs/3andhex_repo:get_public_key/1.
v0.8.4
Add @doc to hex_licenses
v0.7.0
- Fix compatibility with OTP 24
- Change
hex_tarball:create/2error value from{error, too_big}to{tarball, {too_big_compressed | too_big_uncompressed, Size}}.